[Council] Minutes 20120404

Matthew Miller linuxwolf at outer-planes.net
Thu Apr 5 16:23:07 UTC 2012 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

1) Roll Call
Matt Miller, Tobias Markmann, Matthew Wild, Kevin Smith present; Ralph Meijer absent.

2) XMPPWG Report

The XMPP working group meeting covered 3 main topics: end-to-end encryption, domain name assertions, and internationalization.

2.1) E2E

Current proposal is < http://tools.ietf.org/html/draft-miller-xmpp-e2e-00 >, which puts key management into a protocol, and is trying to re-use the work from JOSE (JSON Object Signing and Encryption) WG.  The "plaintext" is still XML (stanzas, wrapped in a XEP-0297 <forwarded/>), with jSON used for crypto headers (key parameters, etc).

2.2) DNA

Although there is no draft documenting the proposal yet, the rough consensus is to follow a layered approach:

* determine trust algorithms for certificate in TLS (PKIX, HTTPS/.well-known, DANE)
* Use dialback, and maybe stream:stream headers, for asserting an identity to be verified using trust algorithms

Concern raised about the use of HTTPS *clients* for all software (clients and servers).  Matt Miller urges discussion continue on < xmpp at ietf.org >.

2.3) Internationalization

Internationalization work is pending outputs from the PRECIS working group.  There is a 6122bis draft available at < http://tools.ietf.org/html/draft-saintandre-xmpp-6122bis-00 >, as well as a proposal for a sub-profile of PRECIS for nicknames at < http://tools.ietf.org/html/draft-saintandre-precis-nickname-00 >. The nicknames draft proposes restrictions over the FreeClass that can be applied for particular scenarios (e.g. MUC room nicknames).

Most of discussion is on the < xmpp at ietf.org > mailing list, as well the PRECIS working group at < precis at ietf.org >.

3) Date of next meeting

All in attendance agreed to next meet on 2012-04-11T16:00Z.

4) Any other business
NONE


- - m&m

Matthew A. Miller
<http://goo.gl/LK55L>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org

iQEcBAEBAgAGBQJPfcbrAAoJEJq6Ou0cgrSPRa4IAMZ0w1XrUF/sF7TpMIqZ0SDN
UpH6DNHT+36SidnVnf4K0DwlxSD1eNDfZnkKALi6JaI2wIItEysIii2HC6OVwpc8
ymC6a38P+yebmNyq96p2LvAw2wob0r6zHhWEXPxGyz+SPd2XC/M7aNNiCfqhCoYi
+Oco8EpYC3zBWmAXPtaHFhQ1UsHqVz5q9F3NmfderKNNM2xfnw1cJoaEKHetqEC1
lTL7rdQYDPjrRjC1Gc/A+P1eyUQU8ATY/Q6dl1Pby1mnmPwHkbo3eJ4LWdtoxWcj
g2lspLLgKhPdukCZf7QP87Vy7WAZodtcwVm/dc87DYqv+UwWzQPVLhzSm3A4yvM=
=lHKI
-----END PGP SIGNATURE-----

More information about the Council mailing list